Brief introduction of EQSecure 3.3 bata

this is the basic ruleset .it in traditional chinese 9th floor ( it read like this in chinese,i don't know what it means 9th floor)

install 3.3 . do not start eqsecure first ,backup the default ruleset. replace the basic ruleset above in the prog.folder. and start/restart at requirement.

original ruleset nly 2 mode, normal , learning.

basic ruleset: if not wrong 3 mode, normal,learning, application installation (as ican't figureout the last one due to font issue.)

 

My bad then. Thanks mitchelson for this new introduction of this HIPS security measure and bringing it to Wilder's members attention. Am anxiously impressed with first contact of it and gloating a bit over features. Gonna really press it in the days to come to see what if anything can squeeze past it's security.

Regards EASTER

 

Looks interesting, but I had some GUI problems and it doesn´t seem to offer anything more than other HIPS except for the Windows/System32 folder monitoring, which you can also find in Safe N Sec. But I can´t say that I´m really impressed, of course it might become a lot better.

 

Depends on what your fancy is. Fancy for me is a HIPS that is solid in protection as it is to blending well with my GUI customizations aka "eye candy". Short of emulating Apple Mac i always have turned to dressing out completely the dull boring appearance of Microsoft O/S's including 98 which i found a couple of Vista-type customizations for it even before XP!

EQSecure is nifty and right up this users alley. Hope they sharpen it up even more, eh the effectiveness not looks. I'm already intrigued by the alpha blending fade effects when something is alerted to. Makes common prompt boxes look rather obsolete now.

 

Quick Q: what does EQSS protect that SSM Free doesn't cover?

 

Hi,

I tried with the 3.3 version. Could not get the application rules inherit the general rules. New applications get the default normal rules, even when you change the normal rules and make them tighter.

Deleting the applications rules and starting the programs again, gave the same wide (allow and ask) rules.

Any ideas?

 

I like to see this EQSysSecure able to TERMINATE the processes that it blocks the calls from. I tested some common malware demos today with it and found the processes still loaded in Task Manager of some of them.

Also capable of fully TERMINATING the Source process after blocking is the reason i have found CyberHawk so noteworthy and dependable to use.

Combined with snoopfree you can successfully pass all the AKLT keylogger tests with EQSysSecure (beta).

Anyone else take this one to task yet?

 

Slight bump to top in case anyone else might be testing this proggy or is aware of an update from it's current version. Thanks.

 

Hi, all

The last 3.3 version of 04-04-2007 (?) of EQSecure fixes the inherite problem.

Positive:
- one application for whitelist and behavior like protection
- fast

Negative
- lacking help (not in english)
- slows down system boot a lot


I have it running as an behavior protection application (like CyberHawk) with registry protection (like Regdefend). It does not kill processes which violate the rules, just stops them doing so.

I am trailing it to replace SSM-free with four protection modes, normal (is SSM-like), learn/install, behavior and block. My default the protection mode is behavior. Reason for trailing it provides more or less same protection options as SSM-free against SSM free system performance (SSM-free is a lot faster than SSM-Pro).

regards

 

Low level data access protection, enhanced registry protection, service installation, key logger and file protection.

 

link for beta ver 3.3
in the first post doesn't seem to work yet,
link working would be:
http://download.pchome.net/php/tdow...stemsafety/EQSysSecure33Setup.zip&svr=1&typ=0

and download page:
http://download.pchome.net/system/systemsafety/download_34417.html

 

Needs addressed Pronto or else can be considered not practical. Also i just downloaded and installed i guess the latest version? I had been testing the (beta) with glowing results aside from leaving malicious processes running (not good), but version i installed from other EQ Review post seized up and stalled the screen forcing a hard restart manually to clear it from memory and free up the system. Glitch? Issue? Chinese checkers?

I'll stick to the previous version in testing but since it cannot TERMINATE offending processes that it blocks, i have to conclude that as a severe limitation and not to depend on it as a dependable replacement just yet.
But that's just my observations from experience with it so far.

 

Official released version 3.3 NOT BETA .

3.4 will be published at the end of this month. As EQ only has 1-3 developers , the software still requires a lot of improvements......
But I am sure EQ will be much better.

========
korb : That ruleset I provided is written by EQ developer , which is to deffend registry/applications&system/files&folders , has nothing to do with the EQ"mode".

 

i saw they posted the ruleset in their forum,but i guess it the font issue that makes it unreadable.i hope to download again when 3.4 is out.

can anyone make a registry ruleset that is like regdefend that can import into EQ secure instead having to create one by one,at least for me as i'm not good at registry stuff.

 

I hope some needed corrections will pan out with the next release. I can only enjoy it as somewhat of only a Novelty (concept) in it's current version untill i can prove firsthand it's made up some ground lost to those issues as it goes.

In reality and hopeful expectations i can hope those matters of concern will be resolved to the satisfaction of all and if so, i see no reason why it can't reach a level of complete security as i know was intended in the first place.

I''ll be one of the first to sing a song of praise in it's honor if those expectations can finally be met soon. I like it very much and see great potential for it and usefullness on the horizon for a security shield with such benefits for the end-user.

 

This is a zip archive opened with notepad (ANSI) and saved as .txt

Open with notepad, save as (all files dropdown option) with ".zip" extention and unpack

Since you guys seem to (Perman, Mitchelson, Korb) seem to be able to get info from their site. Would you keep us posted when new releases are brought out?

Regards K

 

thanks kee,will try and download eqsecure again for trailing

 

by the way ,just login to EQSECURE forum.looking for any bug report.

here are some of them reported by the user.

1. v.3.3 sometimes not remembering rules.popup that you have answered and apply not to ask again but reappeared.


2.registry bug- something to do with this rule

full path was unable to detect a exploit

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden

but if rule written as below,it block the exploit

*\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden

(if don't understand me,pls see here http://www.eqspywatch.com/bbs/read.php?tid=1835)

there are some others report,you any one good in translating can help

forum

http://www.eqspywatch.com/bbs/thread.php?fid=16

 

sorry,kee i use winrar to unzip but it say file corrupted.anyone have same problem?

 

Hi, Korb: Try to use the link provided by Mitchelson post# 38, yes it is an official release, not a beta as I stated earlier, sorry. That link will d/l an exe file. I did not install, because awaiting more info re. compatiality issue w/ my existing apps. Seems to be a new kid on the block. A lot of protential.

 

This should be interesting to follow to see if any following versions beyond the first introduced beta here from this Topic, will make for some more positive results then is currently.

A nice first release but not so nice follow-up for my system. I think i'll wait for another version and only then after reading some upbeat reports. I know is bugs going to crop up, that's only natural, but am pretty amazed at the first one with what it's showed.